API tools faq
paste
Guest User

ASA config

a guest
Sep 24th, 2020
916
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.08 KB | None | 0 0
raw download clone embed print report
  1. Result of the command: "show interface ip bri"
  2.  
  3. Interface IP-Address OK? Method Status Protocol
  4. GigabitEthernet0/0 unassigned YES unset up up
  5. GigabitEthernet0/0.1 10.1.1.254 YES CONFIG up up
  6. GigabitEthernet0/0.10 10.10.10.254 YES CONFIG up up
  7. GigabitEthernet0/0.20 20.20.20.254 YES CONFIG up up
  8. GigabitEthernet0/0.30 30.30.30.254 YES CONFIG up up
  9. GigabitEthernet0/1 unassigned YES unset administratively down down
  10. GigabitEthernet0/2 192.168.122.60 YES manual up up
  11. GigabitEthernet0/3 unassigned YES unset administratively down down
  12. GigabitEthernet0/4 unassigned YES unset administratively down down
  13. GigabitEthernet0/5 unassigned YES unset administratively down down
  14. GigabitEthernet0/6 unassigned YES unset administratively down down
  15. Management0/0 unassigned YES unset administratively down down
  16.  
  17.  
  18.  
  19. Result of the command: "ping 10.1.1.1"
  20.  
  21. Type escape sequence to abort.
  22. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds:
  23. ?????
  24. Success rate is 0 percent (0/5)
  25.  
  26.  
  27. Result of the command: "ping 10.10.10.1"
  28.  
  29. Type escape sequence to abort.
  30. Sending 5, 100-byte ICMP Echos to 10.10.10.1, timeout is 2 seconds:
  31. !!!!!
  32. Success rate is 100 percent (5/5), round-trip min/avg/max = 1/6/10 ms
  33.  
  34.  
  35. Result of the command: "ping 20.20.20.1"
  36.  
  37. Type escape sequence to abort.
  38. Sending 5, 100-byte ICMP Echos to 20.20.20.1, timeout is 2 seconds:
  39. !!!!!
  40. Success rate is 100 percent (5/5), round-trip min/avg/max = 1/6/10 ms
  41.  
  42.  
  43. Result of the command: "ping 30.30.30.1"
  44.  
  45. Type escape sequence to abort.
  46. Sending 5, 100-byte ICMP Echos to 30.30.30.1, timeout is 2 seconds:
  47. !!!!!
  48. Success rate is 100 percent (5/5), round-trip min/avg/max = 1/4/10 ms
  49.  
  50.  
  51.  
  52.  
  53.  
  54.  
  55. : Saved
  56.  
  57. :
  58. : Serial Number: 9ALCE6LEXX7
  59. : Hardware: ASAv, 2048 MB RAM, CPU Pentium II 3701 MHz
  60. :
  61. ASA Version 9.8(1)
  62. !
  63. hostname ciscoasa
  64. enable password $sha512$5000$GIG1kP6HAI7g6DIFf2dhHw==$owekj/puNR3YFce4j3fQsQ== pbkdf2
  65. xlate per-session deny tcp any4 any4
  66. xlate per-session deny tcp any4 any6
  67. xlate per-session deny tcp any6 any4
  68. xlate per-session deny tcp any6 any6
  69. xlate per-session deny udp any4 any4 eq domain
  70. xlate per-session deny udp any4 any6 eq domain
  71. xlate per-session deny udp any6 any4 eq domain
  72. xlate per-session deny udp any6 any6 eq domain
  73. names
  74.  
  75. !
  76. interface GigabitEthernet0/0
  77. no nameif
  78. no security-level
  79. no ip address
  80. !
  81. interface GigabitEthernet0/0.1
  82. vlan 1
  83. nameif VLAN1
  84. security-level 100
  85. ip address 10.1.1.254 255.255.255.0
  86. !
  87. interface GigabitEthernet0/0.10
  88. vlan 10
  89. nameif VLAN10
  90. security-level 100
  91. ip address 10.10.10.254 255.255.255.0
  92. !
  93. interface GigabitEthernet0/0.20
  94. vlan 20
  95. nameif VLAN20
  96. security-level 100
  97. ip address 20.20.20.254 255.0.0.0
  98. !
  99. interface GigabitEthernet0/0.30
  100. vlan 30
  101. nameif VLAN30
  102. security-level 100
  103. ip address 30.30.30.254 255.0.0.0
  104. !
  105. interface GigabitEthernet0/1
  106. shutdown
  107. no nameif
  108. no security-level
  109. no ip address
  110. !
  111. interface GigabitEthernet0/2
  112. nameif OUTSIDE
  113. security-level 0
  114. ip address 192.168.122.60 255.255.255.0
  115. !
  116. interface GigabitEthernet0/3
  117. shutdown
  118. no nameif
  119. no security-level
  120. no ip address
  121. !
  122. interface GigabitEthernet0/4
  123. shutdown
  124. no nameif
  125. no security-level
  126. no ip address
  127. !
  128. interface GigabitEthernet0/5
  129. shutdown
  130. no nameif
  131. no security-level
  132. no ip address
  133. !
  134. interface GigabitEthernet0/6
  135. shutdown
  136. no nameif
  137. no security-level
  138. no ip address
  139. !
  140. interface Management0/0
  141. shutdown
  142. no nameif
  143. no security-level
  144. no ip address
  145. !
  146. ftp mode passive
  147. dns domain-lookup OUTSIDE
  148. dns server-group DefaultDNS
  149. name-server 8.8.8.8
  150. same-security-traffic permit intra-interface
  151. pager lines 23
  152. mtu VLAN1 1500
  153. mtu VLAN10 1500
  154. mtu VLAN20 1500
  155. mtu VLAN30 1500
  156. mtu OUTSIDE 1500
  157. no failover
  158. no monitor-interface service-module
  159. icmp unreachable rate-limit 1 burst-size 1
  160. no asdm history enable
  161. arp timeout 14400
  162. no arp permit-nonconnected
  163. arp rate-limit 8192
  164. route OUTSIDE 0.0.0.0 0.0.0.0 192.168.122.1 1
  165. timeout xlate 3:00:00
  166. timeout pat-xlate 0:00:30
  167. timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 sctp 0:02:00 icmp 0:00:02
  168. timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  169. timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  170. timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  171. timeout tcp-proxy-reassembly 0:01:00
  172. timeout floating-conn 0:00:00
  173. timeout conn-holddown 0:00:15
  174. timeout igp stale-route 0:01:10
  175. user-identity default-domain LOCAL
  176. aaa authentication login-history
  177. http server enable
  178. http 0.0.0.0 0.0.0.0 OUTSIDE
  179. no snmp-server location
  180. no snmp-server contact
  181. crypto ipsec security-association pmtu-aging infinite
  182. crypto ca trustpoint _SmartCallHome_ServerCA
  183. no validation-usage
  184. crl configure
  185. crypto ca trustpool policy
  186. auto-import
  187. crypto ca certificate chain _SmartCallHome_ServerCA
  188. certificate ca 18dad19e267de8bb4a2158cdcc6b3b4a
  189. 308204d3 308203bb a0030201 02021018 dad19e26 7de8bb4a 2158cdcc 6b3b4a30
  190. 0d06092a 864886f7 0d010105 05003081 ca310b30 09060355 04061302 55533117
  191. 30150603 55040a13 0e566572 69536967 6e2c2049 6e632e31 1f301d06 0355040b
  192. 13165665 72695369 676e2054 72757374 204e6574 776f726b 313a3038 06035504
  193. 0b133128 63292032 30303620 56657269 5369676e 2c20496e 632e202d 20466f72
  194. 20617574 686f7269 7a656420 75736520 6f6e6c79 31453043 06035504 03133c56
  195. 65726953 69676e20 436c6173 73203320 5075626c 69632050 72696d61 72792043
  196. 65727469 66696361 74696f6e 20417574 686f7269 7479202d 20473530 1e170d30
  197. 36313130 38303030 3030305a 170d3336 30373136 32333539 35395a30 81ca310b
  198. 30090603 55040613 02555331 17301506 0355040a 130e5665 72695369 676e2c20
  199. 496e632e 311f301d 06035504 0b131656 65726953 69676e20 54727573 74204e65
  200. 74776f72 6b313a30 38060355 040b1331 28632920 32303036 20566572 69536967
  201. 6e2c2049 6e632e20 2d20466f 72206175 74686f72 697a6564 20757365 206f6e6c
  202. 79314530 43060355 0403133c 56657269 5369676e 20436c61 73732033 20507562
  203. 6c696320 5072696d 61727920 43657274 69666963 6174696f 6e204175 74686f72
  204. 69747920 2d204735 30820122 300d0609 2a864886 f70d0101 01050003 82010f00
  205. 3082010a 02820101 00af2408 08297a35 9e600caa e74b3b4e dc7cbc3c 451cbb2b
  206. e0fe2902 f95708a3 64851527 f5f1adc8 31895d22 e82aaaa6 42b38ff8 b955b7b1
  207. b74bb3fe 8f7e0757 ecef43db 66621561 cf600da4 d8def8e0 c362083d 5413eb49
  208. ca595485 26e52b8f 1b9febf5 a191c233 49d84363 6a524bd2 8fe87051 4dd18969
  209. 7bc770f6 b3dc1274 db7b5d4b 56d396bf 1577a1b0 f4a225f2 af1c9267 18e5f406
  210. 04ef90b9 e400e4dd 3ab519ff 02baf43c eee08beb 378becf4 d7acf2f6 f03dafdd
  211. 75913319 1d1c40cb 74241921 93d914fe ac2a52c7 8fd50449 e48d6347 883c6983
  212. cbfe47bd 2b7e4fc5 95ae0e9d d4d143c0 6773e314 087ee53f 9f73b833 0acf5d3f
  213. 3487968a ee53e825 15020301 0001a381 b23081af 300f0603 551d1301 01ff0405
  214. 30030101 ff300e06 03551d0f 0101ff04 04030201 06306d06 082b0601 05050701
  215. 0c046130 5fa15da0 5b305930 57305516 09696d61 67652f67 69663021 301f3007
  216. 06052b0e 03021a04 148fe5d3 1a86ac8d 8e6bc3cf 806ad448 182c7b19 2e302516
  217. 23687474 703a2f2f 6c6f676f 2e766572 69736967 6e2e636f 6d2f7673 6c6f676f
  218. 2e676966 301d0603 551d0e04 1604147f d365a7c2 ddecbbf0 3009f343 39fa02af
  219. 33313330 0d06092a 864886f7 0d010105 05000382 01010093 244a305f 62cfd81a
  220. 982f3dea dc992dbd 77f6a579 2238ecc4 a7a07812 ad620e45 7064c5e7 97662d98
  221. 097e5faf d6cc2865 f201aa08 1a47def9 f97c925a 0869200d d93e6d6e 3c0d6ed8
  222. e6069140 18b9f8c1 eddfdb41 aae09620 c9cd6415 3881c994 eea28429 0b136f8e
  223. db0cdd25 02dba48b 1944d241 7a05694a 584f60ca 7e826a0b 02aa2517 39b5db7f
  224. e784652a 958abd86 de5e8116 832d10cc defda882 2a6d281f 0d0bc4e5 e71a2619
  225. e1f4116f 10b595fc e7420532 dbce9d51 5e28b69e 85d35bef a57d4540 728eb70e
  226. 6b0e06fb 33354871 b89d278b c4655f0d 86769c44 7af6955c f65d3208 33a454b6
  227. 183f685c f2424a85 3854835f d1e82cf2 ac11d6a8 ed636a
  228. quit
  229. telnet timeout 5
  230. ssh stricthostkeycheck
  231. ssh timeout 5
  232. ssh key-exchange group dh-group1-sha1
  233. console timeout 0
  234. threat-detection basic-threat
  235. threat-detection statistics access-list
  236. no threat-detection statistics tcp-intercept
  237. dynamic-access-policy-record DfltAccessPolicy
  238. username cisco password $sha512$5000$EeBQCpWzfgucCAdxlUO3xQ==$mNgonycYUIsVk/8Xp9t6Dw== pbkdf2 privilege 15
  239. !
  240. class-map inspection_default
  241. match default-inspection-traffic
  242. !
  243. !
  244. policy-map type inspect dns preset_dns_map
  245. parameters
  246. message-length maximum client auto
  247. message-length maximum 512
  248. no tcp-inspection
  249. policy-map global_policy
  250. class inspection_default
  251. inspect ip-options
  252. inspect netbios
  253. inspect rtsp
  254. inspect sunrpc
  255. inspect tftp
  256. inspect xdmcp
  257. inspect dns preset_dns_map
  258. inspect ftp
  259. inspect h323 h225
  260. inspect h323 ras
  261. inspect rsh
  262. inspect esmtp
  263. inspect sqlnet
  264. inspect sip
  265. inspect skinny
  266. inspect icmp
  267. policy-map type inspect dns migrated_dns_map_2
  268. parameters
  269. message-length maximum client auto
  270. message-length maximum 512
  271. no tcp-inspection
  272. policy-map type inspect dns migrated_dns_map_1
  273. parameters
  274. message-length maximum client auto
  275. message-length maximum 512
  276. no tcp-inspection
  277. !
  278. service-policy global_policy global
  279. prompt hostname context
  280. no call-home reporting anonymous
  281. call-home
  282. profile CiscoTAC-1
  283. no active
  284. destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
  285. destination address email [email protected]
  286. destination transport-method http
  287. subscribe-to-alert-group diagnostic
  288. subscribe-to-alert-group environment
  289. subscribe-to-alert-group inventory periodic monthly
  290. subscribe-to-alert-group configuration periodic monthly
  291. subscribe-to-alert-group telemetry periodic daily
  292. profile License
  293. destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
  294. destination transport-method http
  295. Cryptochecksum:e299f59689400bb265edacd1054e09c6
  296. : end
  297. no asdm history enable
  298.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!